children whose zones do not reflect the delegation from the parent

hi- i'm curious for some feedback on something i've noticed here and there, and came across again the other day. my experience with dns, and the method which i've always practiced, is that when a zone is delegated, there should be agreement between the parent and the child - that is to say tha

Re: TTLs and Timeout Question

On Tue, 29 Mar 2011 10:52:49 -0700, Kevin Oberman wrote > > From: "listmail" > > > > I'm investigating the failure of a slave server during a network outage at a > > primary server. > > > > The SOA TTL was 1 week on most zones, but the individual records had short > > TTLs, on the order of an ho

Re: TTLs and Timeout Question

> From: "listmail" > Date: Tue, 29 Mar 2011 09:58:27 -0700 > Sender: bind-users-bounces+oberman=es@lists.isc.org > > I'm investigating the failure of a slave server during a network outage at a > primary server. > > The slave server was running and answering queries, but not delivering resul

TTLs and Timeout Question

I'm investigating the failure of a slave server during a network outage at a primary server. The slave server was running and answering queries, but not delivering results for domains for which it is authoritative during the outage. Since the outage occurred in the middle of the night, I have no t

Re: dns RR method is not equal balanced?

Kay wrote: > > some domain has 12 IPs but traffic of the server is not equal. > The traffic of 11 IPs is same and just 1 IP is higher than others. If you use round-robin DNS you are relying on the clients not to muck around with the responses they get from your DNS server. If they sort them, for

Re: dns RR method is not equal balanced?

I apologize for the cut off reply. I accidently hit send before I was complete. If by some domains have 12 ips you mean a 12 A record round robin, then it is important remember that BIND doesn't have any way of telling the load on the 12 servers. So it's load sharing not load balancing. The f5 is

RE: dns RR method is not equal balanced?

Not to mention that RedHat just announced pending EOL of RHEL4 last week. RHEL5 has been out since around 2007 and RHEL6 was released around the start of this year. From: bind-users-bounces+jlightner=water@lists.isc.org [mailto:bind-users-bounces+jlightne

Re: dynamically updating the forwarders with bind/rndc

On Tue, Mar 29, 2011 at 01:12:38PM +0100, Phil Mayers wrote: > On 29/03/11 12:25, Paul Wouters wrote: > > > >Hi, > > > >Is there a way for bind9 (or planned for bind10) to dynamically update > >the forwarders via > >rndc? I believe currently the only way to do this is to rewrite the > >config file

Re: dns RR method is not equal balanced?

First and foremost you shouldn't be running any version of BIND 8. That is way out of date and open to a lot of exploits. That being said if by some -Ben Croswell On Mar 29, 2011 4:55 AM, "Kay" wrote: > Dear my friends. > > I use bind 8.4.7-REL on RHEL 4.4 OS and have thousands of domains. > > In

Re: dynamically updating the forwarders with bind/rndc

On 29/03/11 12:25, Paul Wouters wrote: Hi, Is there a way for bind9 (or planned for bind10) to dynamically update the forwarders via rndc? I believe currently the only way to do this is to rewrite the config file and then cal rndc reload. I believe there's a DBUS interface that NetworkManager

dynamically updating the forwarders with bind/rndc

Hi, Is there a way for bind9 (or planned for bind10) to dynamically update the forwarders via rndc? I believe currently the only way to do this is to rewrite the config file and then cal rndc reload. This is not something that lends itself to automating based on a network manager based netwo

Re: openssl pkcs#11 engine patch

On Wed, 23 Mar 2011, Billy Glynn wrote: For me, I had the same problem. I'm running RHEL5, openssl-0.9.8l with the ISC patch and integrating with the AEP Keyper PKCS#11 lib. After applying the ISC patch, I found that this worked for me: # ./Configure linux-elf -m32 -pthread --pk11-libname=/op

RE: GUI for bind

Hi, we already used the Incognito Name Commander DMS. It is very intuitive and doesn´t necessary without any modifications on Bind. Cagnin -Original Message- From: bind-users-bounces+icagnin=timbrasil.com...@lists.isc.org [mailto:bind-users-bounces+icagnin=timbrasil.com...@lists.isc.or

dns RR method is not equal balanced?

Dear my friends. I use bind 8.4.7-REL on RHEL 4.4 OS and have thousands of domains. In my case ; some domain has 12 IPs but traffic of the server is not equal. The traffic of 11 IPs is same and just 1 IP is higher than others. Today, I moved the dns that is not equal to GSLB(F5) and set addres

Re: RRSIG Expired

[Stealing email threads is a bad idea: ] On Tue, Mar 29, 2011 at 03:25:29PM +0800, Paul Ooi Cong Jen wrote a message of 28 lines which said: > Anyone has issue with RRSIG expired on in-addr.arpa on b.root > server? You probably mean

BIND 9.4.3-P2 assertion failure

Hi, I used BIND 9.4.3-P2 on FreeBSD 7.2-RELEASE (which is built-in) about two years without problems. Since last Friday sometimes I see error messages like following: Mar 28 16:44:06 gate2 named[60455]: /usr/src/lib/bind/isc/../../../contrib/bind9/lib/isc/unix/socket.c:2361: INSIST(!sock->pendi

RRSIG Expired

Hi All, Anyone has issue with RRSIG expired on in-addr.arpa on b.root server? general: /etc/namedb/slave/in-addr.arpa.slave:10: signature has expired in-addr.arpaIN SOA b.in-addr-servers.arpa. nstld.iana.org. ( 2011022011 ; serial